Are Symantec Endpoint Protection Manager, Symantec Endpoint Protection client, or Live Update Administrator vulnerable to CVE-2024-7264

search cancel

Are Symantec Endpoint Protection Manager, Symantec Endpoint Protection client, or Live Update Administrator vulnerable to CVE-2024-7264

book

Article ID: 377857

calendar_today

Updated On:

Products

Endpoint Security Complete

Issue/Introduction

Are Symantec Endpoint Protection Manager (SEPM), Symantec Endpoint Protection client (SEP), or Live Update Administrator (LUA) vulnerable to CVE-2024-7264 / https://nvd.nist.gov/vuln/detail/CVE-2024-7264?

Resolution

None of the following products: SEPM manager, SEP client, or LUA are impacted by CVE-2024-7264:

SEPM Manager does not use GTime2str or use untrusted input for curl parameters
SEP client does not use GTime2str
Live Update Administrator (LUA) does not use libcurl

Feedback

thumb_up Yes

thumb_down No